Route Origin Authorization
$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/3252/bu6hhjGdwcSVWU6ctnE5sH_9zTA.roa
File: bu6hhjGdwcSVWU6ctnE5sH_9zTA.roa (raw, json)
Hash identifier: xFPgpcMsHTSZJADrBkrkSBA1yrEfbTxlof6jzCQ6Pfg=
Subject key identifier: 6E:EE:A1:86:31:9D:C1:C4:95:59:4E:9C:B6:71:39:B0:7F:FD:CD:30
Certificate issuer: /CN=538FC759FAECF98ED7510C8F2E6DE9A718F8DCCE
Certificate serial: 0898
Authority key identifier: 53:8F:C7:59:FA:EC:F9:8E:D7:51:0C:8F:2E:6D:E9:A7:18:F8:DC:CE
Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/U4_HWfrs-Y7XUQyPLm3ppxj43M4.cer
Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3252/bu6hhjGdwcSVWU6ctnE5sH_9zTA.roa
Signing time: Fri 21 Mar 2025 03:28:36 +0000
ROA not before: Fri 21 Mar 2025 03:28:36 +0000
ROA not after: Sat 27 Sep 2025 02:40:14 +0000
asID: 63538
IP address blocks: 157.10.34.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2200 (0x898)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=538FC759FAECF98ED7510C8F2E6DE9A718F8DCCE
Validity
Not Before: Mar 21 03:28:36 2025 GMT
Not After : Sep 27 02:40:14 2025 GMT
Subject: CN=6EEEA186319DC1C495594E9CB67139B07FFDCD30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b7:c1:b7:ff:99:a1:41:10:b4:42:02:5f:f6:
ca:9f:73:ee:d5:82:9d:5e:1e:2c:bd:27:87:cb:76:
8c:8d:01:bf:e6:8a:a9:f7:6f:d4:94:9e:57:9c:ff:
2d:45:ef:aa:63:93:41:d4:70:86:2d:b3:83:44:cf:
a2:c4:cb:3b:a0:81:43:e8:c8:5c:70:62:e0:0d:2c:
da:b9:8f:53:fd:4b:7e:cf:4e:a6:4b:43:e1:0f:48:
fc:59:f4:22:93:69:ef:40:84:e1:8f:a3:5a:92:fa:
44:f8:d2:63:6b:1f:4d:fb:5d:e8:aa:1d:bc:38:14:
48:5a:d1:bd:7e:43:eb:32:dd:d6:f5:a8:75:06:06:
cc:ec:09:7a:28:b2:ef:cd:62:5d:42:d0:08:1f:5f:
97:dd:76:8b:e4:17:dd:11:30:9d:c9:65:70:50:e8:
88:4a:7f:43:e2:d6:e7:d0:54:21:df:93:4f:2f:37:
f9:bd:04:98:1e:35:4a:ba:88:ea:ad:c4:85:16:64:
b2:3a:19:d0:57:a2:be:4f:8d:18:81:bf:58:c9:fb:
dc:11:cc:03:10:a6:6c:f6:1a:30:61:02:1e:1b:b3:
e1:f4:5e:71:8a:da:42:07:ab:1f:f4:fa:29:92:17:
6e:91:40:15:06:60:b7:67:e6:63:24:0c:d1:ac:51:
68:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:EE:A1:86:31:9D:C1:C4:95:59:4E:9C:B6:71:39:B0:7F:FD:CD:30
X509v3 Authority Key Identifier:
keyid:53:8F:C7:59:FA:EC:F9:8E:D7:51:0C:8F:2E:6D:E9:A7:18:F8:DC:CE
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3252/U4_HWfrs-Y7XUQyPLm3ppxj43M4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/U4_HWfrs-Y7XUQyPLm3ppxj43M4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/3252/bu6hhjGdwcSVWU6ctnE5sH_9zTA.roa
RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.10.34.0/23
Signature Algorithm: sha256WithRSAEncryption
71:3c:d2:3d:a6:3c:b6:2c:22:d2:e5:6d:5c:be:14:5c:a4:be:
12:8f:fa:16:07:4c:28:cf:8c:2b:8b:77:ad:36:99:f6:15:53:
a9:f5:f9:1e:34:87:17:26:e5:be:5e:92:ef:2b:ae:54:ec:bf:
8b:58:55:96:ef:74:4e:d2:7e:88:ce:45:4e:84:5b:a2:63:ba:
e8:a4:88:42:19:ee:bf:27:69:de:00:6a:9d:87:45:81:d9:d4:
2a:49:35:dd:55:37:36:97:9d:53:33:ba:26:00:68:e3:69:7c:
49:a5:18:10:7a:5b:0c:34:9c:b5:d6:5d:fa:78:5b:a2:fe:6d:
4c:d5:d0:69:9e:22:60:90:eb:22:05:54:0f:b0:49:0b:10:3e:
2d:cd:f0:8e:97:89:47:89:38:ed:bb:6c:88:8a:69:92:7b:20:
04:c9:54:ec:4e:83:d1:c9:49:ea:17:16:c1:90:4e:8a:c6:eb:
8d:35:a5:10:00:4f:d9:3a:d6:36:6a:ad:b9:4e:cb:f7:a5:08:
d3:11:b3:23:52:3f:fc:43:ba:1c:7d:0e:2c:d1:45:39:d7:32:
a9:d4:79:0e:a6:b0:05:12:39:ad:6c:30:bb:20:84:d4:78:b4:
1e:f5:cd:42:d4:01:2a:a1:5f:95:fa:e0:70:71:36:ff:75:a4:
62:6b:ae:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 18:43:03 2025 by rpki-client